TWI384829B - 認證廢止列表之分散式管理 - Google Patents
認證廢止列表之分散式管理 Download PDFInfo
- Publication number
- TWI384829B TWI384829B TW094113083A TW94113083A TWI384829B TW I384829 B TWI384829 B TW I384829B TW 094113083 A TW094113083 A TW 094113083A TW 94113083 A TW94113083 A TW 94113083A TW I384829 B TWI384829 B TW I384829B
- Authority
- TW
- Taiwan
- Prior art keywords
- authentication
- crl
- abolition
- transmitted
- list
- Prior art date
Links
- 238000000034 method Methods 0.000 claims description 64
- 238000012545 processing Methods 0.000 claims description 26
- 230000006870 function Effects 0.000 claims description 16
- 238000012795 verification Methods 0.000 claims description 15
- 239000000463 material Substances 0.000 claims description 10
- 230000005540 biological transmission Effects 0.000 claims description 4
- 238000007689 inspection Methods 0.000 claims description 2
- 206010000210 abortion Diseases 0.000 claims 1
- 231100000176 abortion Toxicity 0.000 claims 1
- 230000008520 organization Effects 0.000 claims 1
- 238000011156 evaluation Methods 0.000 description 8
- 230000003044 adaptive effect Effects 0.000 description 6
- 102000036364 Cullin Ring E3 Ligases Human genes 0.000 description 5
- 108091007045 Cullin Ring E3 Ligases Proteins 0.000 description 5
- 230000008569 process Effects 0.000 description 5
- 230000001174 ascending effect Effects 0.000 description 3
- 238000012986 modification Methods 0.000 description 3
- 230000004048 modification Effects 0.000 description 3
- 238000004364 calculation method Methods 0.000 description 2
- 230000008859 change Effects 0.000 description 2
- 238000004891 communication Methods 0.000 description 2
- 238000012360 testing method Methods 0.000 description 2
- 230000006978 adaptation Effects 0.000 description 1
- 238000001514 detection method Methods 0.000 description 1
- 230000000694 effects Effects 0.000 description 1
Classifications
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L9/00—Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols
- H04L9/32—Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols including means for verifying the identity or authority of a user of the system or for message authentication, e.g. authorization, entity authentication, data integrity or data verification, non-repudiation, key authentication or verification of credentials
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L9/00—Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols
- H04L9/32—Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols including means for verifying the identity or authority of a user of the system or for message authentication, e.g. authorization, entity authentication, data integrity or data verification, non-repudiation, key authentication or verification of credentials
- H04L9/3263—Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols including means for verifying the identity or authority of a user of the system or for message authentication, e.g. authorization, entity authentication, data integrity or data verification, non-repudiation, key authentication or verification of credentials involving certificates, e.g. public key certificate [PKC] or attribute certificate [AC]; Public key infrastructure [PKI] arrangements
- H04L9/3268—Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols including means for verifying the identity or authority of a user of the system or for message authentication, e.g. authorization, entity authentication, data integrity or data verification, non-repudiation, key authentication or verification of credentials involving certificates, e.g. public key certificate [PKC] or attribute certificate [AC]; Public key infrastructure [PKI] arrangements using certificate validation, registration, distribution or revocation, e.g. certificate revocation list [CRL]
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L9/00—Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols
- H04L9/32—Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols including means for verifying the identity or authority of a user of the system or for message authentication, e.g. authorization, entity authentication, data integrity or data verification, non-repudiation, key authentication or verification of credentials
- H04L9/3236—Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols including means for verifying the identity or authority of a user of the system or for message authentication, e.g. authorization, entity authentication, data integrity or data verification, non-repudiation, key authentication or verification of credentials using cryptographic hash functions
- H04L9/3242—Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols including means for verifying the identity or authority of a user of the system or for message authentication, e.g. authorization, entity authentication, data integrity or data verification, non-repudiation, key authentication or verification of credentials using cryptographic hash functions involving keyed hash functions, e.g. message authentication codes [MACs], CBC-MAC or HMAC
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L2209/00—Additional information or applications relating to cryptographic mechanisms or cryptographic arrangements for secret or secure communication H04L9/00
- H04L2209/60—Digital content management, e.g. content distribution
Landscapes
- Engineering & Computer Science (AREA)
- Computer Security & Cryptography (AREA)
- Computer Networks & Wireless Communication (AREA)
- Signal Processing (AREA)
- Power Engineering (AREA)
- Storage Device Security (AREA)
- Management, Administration, Business Operations System, And Electronic Commerce (AREA)
- Mobile Radio Communication Systems (AREA)
Applications Claiming Priority (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| EP04291124A EP1594250A1 (en) | 2004-05-03 | 2004-05-03 | Distributed management of a certificate revocation list |
Publications (2)
| Publication Number | Publication Date |
|---|---|
| TW200605592A TW200605592A (en) | 2006-02-01 |
| TWI384829B true TWI384829B (zh) | 2013-02-01 |
Family
ID=34931067
Family Applications (1)
| Application Number | Title | Priority Date | Filing Date |
|---|---|---|---|
| TW094113083A TWI384829B (zh) | 2004-05-03 | 2005-04-25 | 認證廢止列表之分散式管理 |
Country Status (8)
Families Citing this family (30)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| EP1594250A1 (en) * | 2004-05-03 | 2005-11-09 | Thomson Licensing | Distributed management of a certificate revocation list |
| US8051052B2 (en) | 2004-12-21 | 2011-11-01 | Sandisk Technologies Inc. | Method for creating control structure for versatile content control |
| US8504849B2 (en) | 2004-12-21 | 2013-08-06 | Sandisk Technologies Inc. | Method for versatile content control |
| US8601283B2 (en) | 2004-12-21 | 2013-12-03 | Sandisk Technologies Inc. | Method for versatile content control with partitioning |
| US7748031B2 (en) | 2005-07-08 | 2010-06-29 | Sandisk Corporation | Mass storage device with automated credentials loading |
| US9177114B2 (en) * | 2005-10-04 | 2015-11-03 | Google Technology Holdings LLC | Method and apparatus for determining the proximity of a client device |
| US9054879B2 (en) * | 2005-10-04 | 2015-06-09 | Google Technology Holdings LLC | Method and apparatus for delivering certificate revocation lists |
| IL174614A (en) * | 2006-03-29 | 2013-03-24 | Yaakov Levy | Method of enforcing use of certificate revocation lists |
| KR101346734B1 (ko) * | 2006-05-12 | 2014-01-03 | 삼성전자주식회사 | 디지털 저작권 관리를 위한 다중 인증서 철회 목록 지원방법 및 장치 |
| US8266711B2 (en) | 2006-07-07 | 2012-09-11 | Sandisk Technologies Inc. | Method for controlling information supplied from memory device |
| US8613103B2 (en) | 2006-07-07 | 2013-12-17 | Sandisk Technologies Inc. | Content control method using versatile control structure |
| US8140843B2 (en) | 2006-07-07 | 2012-03-20 | Sandisk Technologies Inc. | Content control method using certificate chains |
| CN101490689B (zh) * | 2006-07-07 | 2012-05-16 | 桑迪士克股份有限公司 | 用于由存储装置验证实体的方法及使用该方法的存储装置 |
| US8639939B2 (en) | 2006-07-07 | 2014-01-28 | Sandisk Technologies Inc. | Control method using identity objects |
| US8245031B2 (en) | 2006-07-07 | 2012-08-14 | Sandisk Technologies Inc. | Content control method using certificate revocation lists |
| JP5178716B2 (ja) * | 2006-07-07 | 2013-04-10 | サンディスク テクノロジィース インコーポレイテッド | 証明書取消リストを使用するコンテンツ管理システムおよび方法 |
| KR101356736B1 (ko) * | 2007-01-19 | 2014-02-06 | 삼성전자주식회사 | 콘텐츠의 무결성을 확인하기 위한 콘텐츠 제공 장치 및방법 및 콘텐츠 사용 장치 및 방법, 및 콘텐츠 사용 장치를폐지하는 콘텐츠 제공 장치 및 방법 |
| US8819450B2 (en) * | 2008-11-25 | 2014-08-26 | Dell Products L.P. | System and method for providing data integrity |
| US8347081B2 (en) * | 2008-12-10 | 2013-01-01 | Silicon Image, Inc. | Method, apparatus and system for employing a content protection system |
| US9104618B2 (en) | 2008-12-18 | 2015-08-11 | Sandisk Technologies Inc. | Managing access to an address range in a storage device |
| US20100205429A1 (en) * | 2009-02-10 | 2010-08-12 | Gm Global Technology Operations, Inc. | System and method for verifying that a remote device is a trusted entity |
| CN101572707B (zh) * | 2009-05-31 | 2012-08-08 | 成都市华为赛门铁克科技有限公司 | 一种证书状态的验证方法、装置和系统 |
| CN102315938A (zh) * | 2011-07-11 | 2012-01-11 | 北京信安世纪科技有限公司 | 一种提高数字证书撤销列表安全性的方法 |
| TWI433558B (zh) | 2011-12-05 | 2014-04-01 | Ind Tech Res Inst | 動態調整憑證撤銷清單更新頻率的方法及系統 |
| DE102014204044A1 (de) * | 2014-03-05 | 2015-09-10 | Robert Bosch Gmbh | Verfahren zum Widerrufen einer Gruppe von Zertifikaten |
| CN104579689B (zh) * | 2015-01-20 | 2018-02-13 | 中城智慧科技有限公司 | 一种软密钥系统及实现方法 |
| US10530587B2 (en) * | 2015-07-07 | 2020-01-07 | Openvpn Technologies, Inc. | Web scale authentication |
| US10129025B2 (en) * | 2016-09-19 | 2018-11-13 | Red Hat, Inc. | Binding data to a network in the presence of an entity with revocation capabilities |
| CN108365962B (zh) * | 2018-01-02 | 2021-04-06 | 北京信安世纪科技股份有限公司 | 一种证书吊销列表查询方法及装置 |
| CN113256877B (zh) * | 2020-12-31 | 2024-02-02 | 深圳怡化电脑股份有限公司 | 纸币信息管理方法、装置、存储介质和计算机设备 |
Citations (4)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| US5793868A (en) * | 1996-08-29 | 1998-08-11 | Micali; Silvio | Certificate revocation system |
| US6487658B1 (en) * | 1995-10-02 | 2002-11-26 | Corestreet Security, Ltd. | Efficient certificate revocation |
| US6574475B1 (en) * | 1998-08-26 | 2003-06-03 | Nec Corporation | Mobile communication system capable of performing soft-handover between base station controllers connected to different mobile communication exchanges |
| US20030221097A1 (en) * | 2002-04-17 | 2003-11-27 | Toshihisa Nakano | Information input/output system, key management device, and user device |
Family Cites Families (11)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| JP2675032B2 (ja) * | 1987-12-21 | 1997-11-12 | 株式会社日立製作所 | 伝票圧縮文の作成方法 |
| US6453416B1 (en) * | 1997-12-19 | 2002-09-17 | Koninklijke Philips Electronics N.V. | Secure proxy signing device and method of use |
| JP3543618B2 (ja) * | 1998-05-27 | 2004-07-14 | 三菱電機株式会社 | 失効情報検証方式 |
| EP1118184B1 (en) * | 1999-08-09 | 2005-12-14 | Koninklijke Philips Electronics N.V. | Updating a revocation list to foil an adversary |
| EP1237325A4 (en) * | 1999-12-03 | 2007-08-29 | Sanyo Electric Co | DATA DISTRIBUTION DEVICE AND ASSOCIATED RECORDING DEVICE |
| US7120607B2 (en) * | 2000-06-16 | 2006-10-10 | Lenovo (Singapore) Pte. Ltd. | Business system and method using a distorted biometrics |
| KR20010008268A (ko) * | 2000-11-20 | 2001-02-05 | 이계철 | 가입자 단말의 시스템 시간 설정을 위한 타임 스탬핑서비스 방법 |
| US20020073310A1 (en) * | 2000-12-11 | 2002-06-13 | Ibm Corporation | Method and system for a secure binding of a revoked X.509 certificate to its corresponding certificate revocation list |
| EP1616334A1 (en) * | 2003-03-24 | 2006-01-18 | Matsushita Electric Industrial Co., Ltd. | Recording medium recording apparatus and reproducing apparatus |
| JP2007515092A (ja) * | 2003-12-18 | 2007-06-07 | 松下電器産業株式会社 | プログラムデータファイル保存方法および認証プログラム実行方法 |
| EP1594250A1 (en) * | 2004-05-03 | 2005-11-09 | Thomson Licensing | Distributed management of a certificate revocation list |
-
2004
- 2004-05-03 EP EP04291124A patent/EP1594250A1/en not_active Withdrawn
-
2005
- 2005-04-25 TW TW094113083A patent/TWI384829B/zh not_active IP Right Cessation
- 2005-04-26 JP JP2005128013A patent/JP4774235B2/ja not_active Expired - Fee Related
- 2005-04-27 DE DE602005001351T patent/DE602005001351T2/de not_active Expired - Lifetime
- 2005-04-29 US US11/119,391 patent/US8131996B2/en not_active Expired - Fee Related
- 2005-04-30 CN CN2005100667730A patent/CN1707999B/zh not_active Expired - Fee Related
- 2005-05-03 KR KR1020050036972A patent/KR101038331B1/ko not_active Expired - Fee Related
- 2005-05-03 BR BR0501608-8A patent/BRPI0501608A/pt not_active Application Discontinuation
Patent Citations (4)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| US6487658B1 (en) * | 1995-10-02 | 2002-11-26 | Corestreet Security, Ltd. | Efficient certificate revocation |
| US5793868A (en) * | 1996-08-29 | 1998-08-11 | Micali; Silvio | Certificate revocation system |
| US6574475B1 (en) * | 1998-08-26 | 2003-06-03 | Nec Corporation | Mobile communication system capable of performing soft-handover between base station controllers connected to different mobile communication exchanges |
| US20030221097A1 (en) * | 2002-04-17 | 2003-11-27 | Toshihisa Nakano | Information input/output system, key management device, and user device |
Also Published As
| Publication number | Publication date |
|---|---|
| CN1707999B (zh) | 2010-12-22 |
| KR101038331B1 (ko) | 2011-05-31 |
| DE602005001351T2 (de) | 2008-02-21 |
| KR20060045882A (ko) | 2006-05-17 |
| JP4774235B2 (ja) | 2011-09-14 |
| EP1594250A1 (en) | 2005-11-09 |
| TW200605592A (en) | 2006-02-01 |
| CN1707999A (zh) | 2005-12-14 |
| US20050257046A1 (en) | 2005-11-17 |
| US8131996B2 (en) | 2012-03-06 |
| BRPI0501608A (pt) | 2006-01-10 |
| JP2005341552A (ja) | 2005-12-08 |
| DE602005001351D1 (de) | 2007-07-26 |
Similar Documents
| Publication | Publication Date | Title |
|---|---|---|
| TWI384829B (zh) | 認證廢止列表之分散式管理 | |
| EP1622301B1 (en) | Methods and system for providing a public key fingerprint list in a PK system | |
| KR101019006B1 (ko) | 암호 키들의 대체를 위한 인증 및 분할 시스템 및 방법 | |
| JP4113274B2 (ja) | 認証装置および方法 | |
| AU746966B2 (en) | Method and apparatus for cryptographically camouflaged cryptographic key storage certification and use | |
| CN100380338C (zh) | 主动检测软件窜改的系统和方法 | |
| US20020078347A1 (en) | Method and system for using with confidence certificates issued from certificate authorities | |
| KR100702499B1 (ko) | 메시지 무결성 보증 시스템, 방법 및 기록 매체 | |
| US8631486B1 (en) | Adaptive identity classification | |
| EP1407339A2 (en) | Firmware validation | |
| WO2017000648A1 (zh) | 一种被加固软件的认证方法及装置 | |
| CN114257376B (zh) | 数字证书更新方法、装置、计算机设备和存储介质 | |
| EP4196894B1 (en) | Centralized ledger system for device authentication | |
| CN114036490B (zh) | 外挂软件接口调用安全认证方法、USBKey驱动装置及认证系统 | |
| JP6813442B2 (ja) | 検証装置 | |
| KR20190027207A (ko) | 개인정보 접속기록 무결성 검증시스템 및 검증방법 | |
| KR102005787B1 (ko) | 인증서 암호화 방법 | |
| EP1594251B1 (en) | Distributed management of a certificate revocation list | |
| Konashevych | Data insertion in blockchain for legal purposes. How to sign contracts using blockchain | |
| JP2016531477A (ja) | 証明書の選択的な取り消し | |
| JP2002132145A (ja) | 認証方法、認証システム、記録媒体及び情報処理装置 | |
| Steel | Towards a formal security analysis of the Sevecom API | |
| CN120498675A (zh) | 数据安全传输系统及方法 | |
| CN114357385A (zh) | 一种软件防护和授权方法、系统及装置 | |
| Wang | Formal Security Analysis of Australian E-passport Implementation |
Legal Events
| Date | Code | Title | Description |
|---|---|---|---|
| MM4A | Annulment or lapse of patent due to non-payment of fees |